If an Email Subject is Urgent, Be Skeptical
Important Update! Urgent! Expires in 1 Day! Confirm your Email Now! Your Password Has Been Stolen!
This messaging is often used in some of the most disarming phishing emails. As a business owner, you and your staff need to be vigilant when it comes to catching these scams.
Phishing Attacks are a Growing Problem
When we think about hackers, we always think about technologically brilliant social outcasts sitting in front of half a dozen screens trying to digitally rob banks. That’s a fun way to portray them in television and movies, but these days it doesn’t take a lot of technical know-how to run the most successful scams in the cybercriminal’s playbook.
Cybercriminals rely less on breakthroughs and more on new psychological ways to trick users.
Phishing attacks are prominent today because they work. Users fall for them, and you almost can’t blame them for it. A phishing email is an email that looks legitimate, and is usually spoofing a legitimate site or service.
For example, a phishing email might look like it’s coming from your bank. The from address appears (at first glance) to be coming from a real email address from your bank. It might even get filtered normally, if you already have filters in place to organize email from your bank. Clicking into the email, you’ll see your bank’s logo.
Everything will look very real and very legitimate at first glance.
That’s why phishing attacks are so easy to fall for.
The email itself usually isn’t dangerous on its own, although it could have links to dangerous sites, or contain dangerous attachments. Most of the danger lies in where the email instructs the user to go.
How to Spot a Phishing Attack
First of all, if an email seems too good to be true, or extremely urgent, or it’s asking for password information that you didn’t trigger, immediately be skeptical.
- Carefully hover (don’t click!) over links and see if they go to a legitimate URL. If the email is from Paypal, a link should lead back to paypal.com or accounts.paypal.com. If there is anything strange between ‘paypal’ and the ‘.com’ then something is suspicious. There should also be a forward slash (/) after the .com. If the URL was something like paypal.com.mailru382.co/something, then you are being spoofed. Everyone handles their domains a little differently, but use this as a general rule of thumb:
- paypal.com - Safe
- paypal.com/activatecard - Safe
- business.paypal.com - Safe
- business.paypal.com/retail - Safe
- paypal.com.activatecard.net - Suspicious! (notice the dot immediately after Paypal’s domain name)
- paypal.com.activatecard.net/secure - Suspicious!
- paypal.com/activatecard/tinyurl.com/retail - Suspicious! Don’t trust dots after the domain!
- Check the email in the header. An email from Amazon wouldn’t come in as email@example.com. Do a quick Google search for the email address to see if it is legitimate.
- Always be careful opening attachments. If there is an attachment or link on the email, be extra cautious.
- Be skeptical of password alerts. If the email mentions passwords, such as “your password has been stolen,” be suspicious.
When in doubt, it’s best to be skeptical of an email. That doesn’t mean email correspondence has to be distrusted, though. If your business has a reliable spam-blocking solution in place, it can help weed out some (not always all) phishing attacks.
If you are getting suspicious emails and want us to take a look, give us a call at 877-223-6401 or visit www.caltech.com to learn more.